data protection 1998 summary

8 Guiding Data Protection 1998 Summary

What is the 8 guiding data protection 1998 summary? The Data Protection Act 1998 was an act of Parliament designed to protect personal data stored on computers or in organized paper filing systems. Also, the Act allows individuals access to personal data relating to them, to challenge the misuse of it, and seek redress. Read below the guide of Data Protection 1998 Summary.

8 Guiding Data Protection 1998 Summary

The new Data Protection Act came into force on October 1st, 1998, and replaced the Data Protection Act 1984. It enacted the EU Data Protection Directive, 1995’s provisions on the protection, processing, and movement of personal data.

Data protection had been an issue for a long time, with the 1984 Act being in the face of public concern about the misuse of personal information. However, technology had moved on and people became aware that powerful new computer programs could be used to store, process, and manipulate immense quantities of information. 


The Information Commissioner’s Office (ICO) is responsible for enforcing the Act. The ICO’s remit includes companies, local authorities, and government bodies in England, Scotland, and Wales. In Northern Ireland, similar duties are the Information Commissioner for Northern Ireland.

The ICO can only investigate a company or organization if they have reason to believe there is an infringement of the Act. They have the power to inspect documents, question employees, and even close down premises if they find evidence of serious contravention. 

The ICO also has a range of powers to fine people or organizations that have breached the Act. Fines can be as much as £500,000. Also, the ICO will often issue a warning rather than impose a fine – but the fine may still be up to £500,000.

The ICO can also issue a so-called “information notice” to require an organization to provide information about how they handle personal data.

Main Provisions

The Act was by the Data Protection Act 1998 (Amendment) Regulations 2000, SI 2000 No. 1882, which came into force on 1 October 2000. Also, the Regulations amended the 1998 Act to bring it into line with Directive 95/46/EC on the protection of individuals regarding the processing of personal data and the free movement of such data. 

Regulations made under section 11 of the 1998 Act have been to implement certain provisions of the Directive, in particular Articles 6 and 7. Under Article 6(1) organizations may transfer personal data to countries outside the European Economic Area (EEA) only if they are “adequate” to protect data. 

The Act gave people the right to use a pseudonym (or “pen name”) when dealing with most public authorities. Also, it stipulated that all public authorities must keep a register of the information held about individuals.

Data Protection 1998: Risks

A good and trustworthy data protection system is an important aspect of any business. It ensures good organization, effective service, and peace of mind. However, it may be hard to come up with an effective system. 

The Data Protection Act 1998 introduced several regulations which may be hard for some businesses to follow. Nonetheless, a good system would bring in great profits


The Data Protection Act 1998 is a very important piece of legislation that can have a huge impact on the way people view a business. It is also a useful tool to protect people’s information as well as their identity.